Post Title: Head of
EMEA IT Risk
Job Number: 890370
Work type: Full time
Location: Bristol Edinburgh
Background Information:
The Head of EMEA IT Risk is responsible for developing and leading the IT
Risk Function for CTS EMEA, working across all the various technology teams and
in close collaboration with Risk Managers supporting the relevant CPU Business
lines.
Main Purpose of the Role
The role of the Head of EMEA IT Risk encompasses strategic direction on
adherence to CPU's IT Policies and Standards and on management of risk. He/she
is responsible for creating and maintaining cost effective services for the
delivery of IT risk activities, ensuring risk accountability is embedded to
effectively drive management of risks in a way that enables sustainable long
term growth and allows CPU EMEA to balance its appetite for risk with
operational requirements.
Person Specification
This position calls for a strong persuasive, strategic leader who
understands business operations, information technology and security and will
utilise that knowledge to optimise the control environment for risk and
security.
Key Responsibilities
- Manage the relationship between CTS EMEA and the IT Risk Function, attending relevant forums and providing an initial contact for all risk related matters. Specific responsibility for assessing, monitoring and improving CTS EMEA risk management.
- To lead and manage monthly CTS EMEA Risk Boards, ensuring provision of an accurate view of the on-going risk profile and any exceptions.
- Drive a proactive risk culture across CTS EMEA that is infused across the entire organisation.
- Work with Global IT Security and CTS on policy development, best practice and implementation where appropriate of common methodologies, tools and techniques representing CTS EMEA.
- Manage the engagement with Internal Audit and CTS EMEA for IT related audits, ensuring consistency of learning and remedial actions across all infrastructure platforms.
- Ensure all activity within CTS EMEA is undertaken against a background of the risk appetite set by the Global CTS Risk Committee.
- Ensure risks are identified, assessed and monitored with theming undertaken to highlight and drive prioritisation of systemic issues both regionally and globally.
- Ensure reliable data is produced and that measurement/modelling of risks are refined to facilitate more complete analysis/evaluation of risk scenarios.
- Drive implementation of an internal controls system which is effective in design and operation.
- Work with the EMEA CIO and the Global Information Security Team to ensure consistency of risk appetite application, controls and delivery of risk remediation plans for local infrastructure where appropriate.
- Lead and manage the EMEA IT Risk Team.
- Provide frank and timely communication across CTS EMEA about risk, both across the organisation and through reporting to the board and senior management.
Essential Skills, Experience and Competencies
He/she must have demonstrated
specialist experience of IT risk and technical information security as well as
having an understanding of technology and its application. High level
communication skills are essential to successfully translate technology, risk
and security requirements into business terms and influence senior business and
IT leadership.
- Experience of managing IT risk within a global team.
- Proven experience of management of complex systems and technologies in a large scale business.
- Ability to deliver under pressure.
- Experienced working with senior management and Executives.
- Able to command respect from staff, peers and Executives.
- Understands CPU as a Business and the impact of new technologies and systems on that Business.
- Skilled in creating high impact presentations for all audiences (senior management, regulators, training etc.)
- Strong written and verbal communication skills with the ability to foster a collaborative working relationship with multiple areas ad complex business lines.
- A university degree
PLUS
MSc in Information Security
OR
CISSP (Certified Information
Systems Security Professional)
CISM (Certified Information
Security Manager)
CISA (Certified Information
Systems Auditor)
OR
Appropriate experience with a
proven track record in Information Security.
Desirable
Skills, Experience and Competencies
Large scale Programme delivery
Third party supplier and
outsourcing management.
Specific Key Benefits of the role
Computershare offers all employees 25 days holiday, excellent pension scheme,
shareholder incentive plan, subsidised gym membership and a flexible employee
benefits scheme.
All successful candidates will be required to undergo the Computershare
Pre-Employment Screening Process before commencing employment. Employment will
be subject to satisfactory clearance on background checks including
Identification, Passport Validation, Finance, Qualification, Employment /
Personal referencing and Criminal Record Basic Disclosure checks.
Computershare Investor Services plc is authorised and regulated by the
Financial Conduct Authority. Computershare Investor Services plc is registered
in England and Wales No 3498808 and the registered office address is: The
Pavilions, Bridgwater Road, Bristol, BS13 8AE.
Closing date:
1 Nov 2013 11:55pm GMT Standard Time
Read more information from the original posting
following the link below: